Details of VAR-202208-1294

ID

VAR-202208-1294

CVE

CVE-2022-32894

TITLE

Out-of-bounds write vulnerability in multiple Apple products

Trust: 0.8

sources: JVNDB: JVNDB-2022-017314

DESCRIPTION

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited. iPadOS , iOS , macOS Multiple Apple products have an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Apple macOS Monterey is the eighteenth major release of Apple's Macintosh desktop operating system, macOS. Apple macOS Monterey versions prior to 12.5.1 have a security vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2022-08-17-1 iOS 15.6.1 and iPadOS 15.6.1 iOS 15.6.1 and iPadOS 15.6.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213412. Kernel Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation) Impact: An application may be able to execute arbitrary code with kernel privileges. CVE-2022-32894: an anonymous researcher WebKit Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation) Impact: Processing maliciously crafted web content may lead to arbitrary code execution. WebKit Bugzilla: 243557 CVE-2022-32893: an anonymous researcher This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from https://www.apple.com/itunes/ iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device. The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device. To check that the iPhone, iPod touch, or iPad has been updated: * Navigate to Settings * Select General * Select About. The version after applying this update will be "iOS 15.6.1 and iPadOS 15.6.1". All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222. This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmL9UiMACgkQ4RjMIDke Nxkiuw/+IhqxvCCS9q8hQMHDpFvVVmFdfO+7ukTVSpd12Cp5r0VGVP/zJOCecXR1 cnFHIPx8zVZXzQzsa+lCSWhT+20qOiuCjpqWNVY9pCovCPds3r1hhL2/1H0KejGK 2Ms910r+yxvEmhzz0MPk95d5+k+LaBPC1sfuNVTn9eUXImPDuLzLIyd8nW5khjNW spOIlS82VNBAcw8VQMxjgsiD6lhSsqvdkBPNhbI4/mMeIEXOOb+fRtHUOtorGLF2 R1DzU1zmPLytcPGE+hxVXnR5F1z/+ea1DEWumvzSNfwja9HI2xPfmm9E8Pomq9lk SEW8cxlqAdKY2/cQ2B2I7ihJ3REfJjSnhXqTsuad1jVn9k1t8ZmKBWh6bgOQKQQg 9BfIhcCeL398fmRUZQG1h6zo33MukUMMjfTgRjrjxhETLYCZQybjFAC4s98j2S0o yUpKaBUHc+tL/uupW01LwzP53SR2e4rBQhi+ACqiCEoJKAHYfJaj6YeblILiM6Sa QdfbsiCzSIqM6nJLl5ZIYn6rXEEKGyGpKMAYXvc7FsR691DTQxMiQ8KcraoCwAer LzviWOF2tVNmDYkv5EFnXhSB4+uYzViSQhPKM8s2DRhP/WhxdVF3woRhIyHLq60S qKoFKvQwTVTugIFIR4cGfsfAbV7zCBhqH7+fKBGfLeTOBCH7ULE=SLRt -----END PGP SIGNATURE-----

Trust: 1.98

sources: NVD: CVE-2022-32894 // JVNDB: JVNDB-2022-017314 // VULHUB: VHN-424983 // VULMON: CVE-2022-32894 // PACKETSTORM: 168117 // PACKETSTORM: 168118

AFFECTED PRODUCTS

vendor:	apple	model:	macos	scope:	lt	version:	12.5.1	Trust: 1.0
vendor:	apple	model:	macos	scope:	gte	version:	12.0	Trust: 1.0
vendor:	apple	model:	ipados	scope:	lt	version:	15.6.1	Trust: 1.0
vendor:	apple	model:	iphone os	scope:	lt	version:	15.6.1	Trust: 1.0
vendor:	apple	model:	watchos	scope:	lt	version:	9.0	Trust: 1.0
vendor:	apple	model:	macos	scope:	gte	version:	11.0	Trust: 1.0
vendor:	apple	model:	macos	scope:	lt	version:	11.7	Trust: 1.0
vendor:	アップル	model:	ipados	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	watchos	scope:	eq	version:	9.0	Trust: 0.8
vendor:	アップル	model:	ios	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	macos	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-017314 // NVD: CVE-2022-32894

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2022-32894
value:	HIGH
Trust: 1.8
CNNVD:	CNNVD-202208-3348
value:	HIGH
Trust: 0.6

NVD:
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2022-32894
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-017314 // NVD: CVE-2022-32894 // CNNVD: CNNVD-202208-3348

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.1
problemtype:	Out-of-bounds writing (CWE-787) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-424983 // JVNDB: JVNDB-2022-017314 // NVD: CVE-2022-32894

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202208-3348

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202208-3348

CONFIGURATIONS

sources: NVD: CVE-2022-32894

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-424983

PATCH

title:	HT213443 Apple Security update	url:	https://support.apple.com/en-us/ht213412	Trust: 0.8
title:	Apple macOS Monterey Buffer error vulnerability fix	url:	http://123.124.177.30/web/xxk/bdxqbyid.tag?id=206038	Trust: 0.6
title:	Apple: macOS Monterey 12.5.1	url:	https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories&qid=1bb557c916beb7d241af583e99c5c90b	Trust: 0.1
title:	Apple: iOS 15.6.1 and iPadOS 15.6.1	url:	https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories&qid=935bf26a0e1b2691d379b98ca5e49eb8	Trust: 0.1

sources: VULMON: CVE-2022-32894 // JVNDB: JVNDB-2022-017314 // CNNVD: CNNVD-202208-3348

EXTERNAL IDS

db:	NVD	id:	CVE-2022-32894	Trust: 3.6
db:	PACKETSTORM	id:	168117	Trust: 0.8
db:	PACKETSTORM	id:	168118	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-017314	Trust: 0.8
db:	CNNVD	id:	CNNVD-202208-3348	Trust: 0.7
db:	AUSCERT	id:	ESB-2022.5473	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.4105	Trust: 0.6
db:	VULHUB	id:	VHN-424983	Trust: 0.1
db:	VULMON	id:	CVE-2022-32894	Trust: 0.1

sources: VULHUB: VHN-424983 // VULMON: CVE-2022-32894 // JVNDB: JVNDB-2022-017314 // PACKETSTORM: 168117 // PACKETSTORM: 168118 // NVD: CVE-2022-32894 // CNNVD: CNNVD-202208-3348

REFERENCES

url:	http://seclists.org/fulldisclosure/2022/aug/16	Trust: 2.5
url:	http://seclists.org/fulldisclosure/2022/oct/49	Trust: 2.5
url:	http://seclists.org/fulldisclosure/2022/oct/45	Trust: 2.5
url:	https://support.apple.com/en-us/ht213413	Trust: 2.3
url:	https://support.apple.com/kb/ht213443	Trust: 1.7
url:	https://support.apple.com/kb/ht213486	Trust: 1.7
url:	https://support.apple.com/en-us/ht213412	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32894	Trust: 1.6
url:	https://www.cisa.gov/known-exploited-vulnerabilities-catalog	Trust: 0.8
url:	https://vigilance.fr/vulnerability/apple-ios-macos-buffer-overflow-via-kernel-39070	Trust: 0.6
url:	https://support.apple.com/en-us/ht213443	Trust: 0.6
url:	https://vigilance.fr/vulnerability/apple-ios-macos-two-vulnerabilities-39070	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.5473	Trust: 0.6
url:	https://packetstormsecurity.com/files/168117/apple-security-advisory-2022-08-17-2.html	Trust: 0.6
url:	https://cxsecurity.com/cveshow/cve-2022-32894/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.4105	Trust: 0.6
url:	https://packetstormsecurity.com/files/168118/apple-security-advisory-2022-08-17-1.html	Trust: 0.6
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32893	Trust: 0.2
url:	https://www.apple.com/support/security/pgp/	Trust: 0.2
url:	https://support.apple.com/en-us/ht201222.	Trust: 0.2
url:	https://support.apple.com/kb/ht213413	Trust: 0.1
url:	https://support.apple.com/downloads/	Trust: 0.1
url:	https://support.apple.com/ht213413.	Trust: 0.1
url:	https://support.apple.com/ht213412.	Trust: 0.1
url:	https://www.apple.com/itunes/	Trust: 0.1

CREDITS

Apple

Trust: 0.2

sources: PACKETSTORM: 168117 // PACKETSTORM: 168118

SOURCES

db:	VULHUB	id:	VHN-424983
db:	VULMON	id:	CVE-2022-32894
db:	JVNDB	id:	JVNDB-2022-017314
db:	PACKETSTORM	id:	168117
db:	PACKETSTORM	id:	168118
db:	NVD	id:	CVE-2022-32894
db:	CNNVD	id:	CNNVD-202208-3348

LAST UPDATE DATE

2023-12-18T11:02:48.700000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-424983	date:	2022-12-07T00:00:00
db:	JVNDB	id:	JVNDB-2022-017314	date:	2023-10-12T06:31:00
db:	NVD	id:	CVE-2022-32894	date:	2022-12-07T03:02:55.287
db:	CNNVD	id:	CNNVD-202208-3348	date:	2022-12-09T00:00:00

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-424983	date:	2022-08-24T00:00:00
db:	JVNDB	id:	JVNDB-2022-017314	date:	2023-10-12T00:00:00
db:	PACKETSTORM	id:	168117	date:	2022-08-19T19:28:42
db:	PACKETSTORM	id:	168118	date:	2022-08-19T19:28:55
db:	NVD	id:	CVE-2022-32894	date:	2022-08-24T20:15:09.193
db:	CNNVD	id:	CNNVD-202208-3348	date:	2022-08-17T00:00:00